Senior Advisor, Cyber Security

  • Company: Dell
  • Location: Bedford, Massachusetts
  • Posted: November 22, 2017
  • Reference ID: R21196
Why Work at Dell?
Endless challenges and rewards. Opportunities on six continents. A team of colleagues fueled by collaboration. All this, and a company deeply committed to integrity and responsibility.
Incident Response Content Engineer Functional Role Description The Incident Response Content Engineer implements detective and analysis capabilities within existing IR and team platforms in the form of meta-data, reports, alerts and rules.  The main focus is to take disparate log, packet, threat intelligence and behavioral data and turn it into strategic and tactical intelligence relevant to the defense of the company.
Responsible For:
  • Development, research and deployment of analysis content for CSIRT consumption including meta-data, parsed log data and packet data, rules and alerts
  • Programmatic enrichment and dissemination of intelligence from all available sources
  • Automation of repeatable CSIRT processes related to workflow within platforms
  • Collaboration with Curation functional role in deriving features from known IoCs and TTPs to develop behavioral or specific detection and response content
  • Maintaining developed content documentation including how it aligns with different platform, automation and workflow mechanics
  • Tracking dependent support issues
  • Facilitate day to day operations for the Cyber Security and Intelligence Response Team
  • Developing improved ways to curate, enrich and disseminate threat intelligence data
  • Serve as level 3 analyst for escalations
  • Perform POCs to further CSIRT technology stack
  • Augmentation of Threat Hunting
Educational and Certification Requirements
  • Graduate/Masters in Computer Science, Information Science, or Information Systems Management or 6+ years of relevant experience
Skills Requirements
  • Excellent analytical and problem solving skills
  • One or more programming/scripting languages (Python, Scala, Java, .NET, PowerShell)
  • Good systems and network administration skills
  • Experience with security technologies:
    • SIEM and Log Management Solutions (NetWitness, Splunk, Log Insight, QRadar, ArcSight)
    • Deep Packet Inspection (NetWitness, Bro, etc)
    • Intrusion Detection Systems (Snort/Sourcefire, Tippingpoint, etc)
    • End-point security (NetWitness Endpoint, MIR, McAfee HIPS, etc)
    • Web Proxy/Content Filtering (IronPort, Blue Coat, Websense, etc)
    • Authentication platforms (LDAP, Active Directory, PKI, Radius, RSA SecurID)
    • Incident Management Solutions (Archer, ArchSight, RTRI, Service Now)
  • Understanding of multiple operating systems (Windows, Unix, Linux, OSX)
  • Expert understanding of infrastructure and security device log formats
  • Expert understanding of network communications and protocols
  • Continuous integration technologies
  • DevOps
  • Network forensics
Preferred Requirements:
Preferred candidates will possess good analytical, technical, problem-solving, and organizational skills. They must have the ability to adjust quickly to shifting priorities and make timely decisions with limited information. They will also be able to make decisions independently and in a self-directed manner in support of the goals of the team and organization, as well as be motivated to tackle challenging problems.
Company Description :
With more than 100,000 team members globally, we promote an environment that is rooted in the entrepreneurial spirit in which the company was founded. Dell's team members are committed to serving our communities, regularly volunteering for over 1,500 non-profit organizations. The company has also received many accolades from employer of choice to energy conservation. Our team members follow an open approach to technology innovation and believe that technology is essential for human success.

Why work with us?
- Life at Dell means collaborating with dedicated professionals with a passion for technology.
- When we see something that could be improved, we get to work inventing the solution.
- Our people demonstrate our winning culture through positive and meaningful relationships.
- We invest in our people and offer a series of programs that enables them to pursue a career that fulfills their potential.
- Our team members' health and wellness is our priority as well as rewarding them for their hard work.

EEO Statement:
Dell is an Equal Opportunity Employer and Prohibits Discrimination and Harassment of Any Kind: Dell is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Dell are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV Status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Dell will not tolerate discrimination or harassment based on any of these characteristics. Dell encourages applicants of all ages. 
Educational and Certification Requirements
  • Graduate/Masters in Computer Science, Information Science, or Information Systems Management or 6+ years of relevant experience
Skills Requirements
  • Excellent analytical and problem solving skills
  • One or more programming/scripting languages (Python, Scala, Java, .NET, PowerShell)
  • Good systems and network administration skills
  • Experience with security technologies:
    • SIEM and Log Management Solutions (NetWitness, Splunk, Log Insight, QRadar, ArcSight)
    • Deep Packet Inspection (NetWitness, Bro, etc)
    • Intrusion Detection Systems (Snort/Sourcefire, Tippingpoint, etc)
    • End-point security (NetWitness Endpoint, MIR, McAfee HIPS, etc)
    • Web Proxy/Content Filtering (IronPort, Blue Coat, Websense, etc)
    • Authentication platforms (LDAP, Active Directory, PKI, Radius, RSA SecurID)
    • Incident Management Solutions (Archer, ArchSight, RTRI, Service Now)
  • Understanding of multiple operating systems (Windows, Unix, Linux, OSX)
  • Expert understanding of infrastructure and security device log formats
  • Expert understanding of network communications and protocols
  • Continuous integration technologies
  • DevOps
  • Network forensics
Preferred Requirements:
Preferred candidates will possess good analytical, technical, problem-solving, and organizational skills. They must have the ability to adjust quickly to shifting priorities and make timely decisions with limited information. They will also be able to make decisions independently and in a self-directed manner in support of the goals of the team and organization, as well as be motivated to tackle challenging problems.
Company Description :
With more than 100,000 team members globally, we promote an environment that is rooted in the entrepreneurial spirit in which the company was founded. Dell's team members are committed to serving our communities, regularly volunteering for over 1,500 non-profit organizations. The company has also received many accolades from employer of choice to energy conservation. Our team members follow an open approach to technology innovation and believe that technology is essential for human success.

Why work with us?
- Life at Dell means collaborating with dedicated professionals with a passion for technology.
- When we see something that could be improved, we get to work inventing the solution.
- Our people demonstrate our winning culture through positive and meaningful relationships.
- We invest in our people and offer a series of programs that enables them to pursue a career that fulfills their potential.
- Our team members' health and wellness is our priority as well as rewarding them for their hard work.

EEO Statement:
Dell is an Equal Opportunity Employer and Prohibits Discrimination and Harassment of Any Kind: Dell is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Dell are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV Status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Dell will not tolerate discrimination or harassment based on any of these characteristics. Dell encourages applicants of all ages. 

Job Family: Legal
Job ID: R21196

Share this Job